---
kind: ConfigMap
apiVersion: v1
metadata:
  name: gatekeeper-config
data:
  config.yaml: |
    client-id: myapp
    client-secret: db7b8b62-4fd7-4769-b397-de57614164df
    discovery-url: http://keycloak.kryukov.local/iam/auth/realms/app
    enable-metrics: true
    enable-refresh-tokens: true
    encryption-key: AgXa7xRcoClKEU0AHSH4X0XhL5Qy2Z2j
    skip-openid-provider-tls-verify: true
    listen: :3000
    listen-admin: :4000
    redirection-url: https://application.kryukov.local
    enable-logout-redirect: true
    enable-encrypted-token: true
    enable-json-logging: true
    resources:
    - uri: /
      white-listed: true
    - uri: /g1.html
      groups:
      - g1
    - uri: /g2.html
      groups:
      - g2
    - uri: /favicon
      white-listed: true
    - uri: /css/*
      white-listed: true
    headers:
      BiTest: allowed
    upstream-url: http://openresty:80